nCipher HSM as a Service delivers high-assurance security

nShield as a Service provides cryptography on-demand using cloud-based nCipher hardware security modules (HSMs), and allows secure code execution in the cloud.

  • 4 years ago Posted in

nCipher Security has introduced nShield as a Service, a cloud-based hardware security module (HSM) service that allows organisations to protect sensitive data and applications and helps meet compliance mandates – simply and efficiently, using on-demand cryptography.


“Organisations embracing cloud-first strategies require cloud-first encryption,” said Peter Galvin, vice president of strategy, nCipher Security. “This means remote, automated management at scale, and flexible access control both in the cloud and onsite. nShield as a Service makes it easy to adopt a secure, multi-cloud encryption strategy using the same nShield HSMs organisations deploy onsite today.”

nShield as a Service is ideal for cloud-first strategies, selective cloud migration, or adding HSM capacity to handle workload spikes. The customer experience is consistent and familiar – users interact with the cloud-based nShield® HSMs in the same way as with nShield appliances in their own data centers. And customers utilising nCipher’s unique secure execution environment to run sensitive application code within a secure FIPS-validated boundary now have that same opportunity using cloud-based as well as on premises HSMs.

Using nShield as a Service, customers can:

  • implement Bring Your Own Key and Host Your Own Key solutions with a trusted third party service
  • maintain full control over key material and maintain separation of data from the encryption keys
  • extend cloud-based cryptography and key management across multiple clouds
  • implement secure code execution for cloud-based workloads
  • integrate with third party applications in the cloud

“The nShield as a Service launch highlights the synergies we’ve gained since becoming an Entrust Datacard company in June,” Galvin said. “We were able to accelerate and enhance nShield as a Service by combining our HSM and cryptography expertise with Entrust Datacard’s experience in data centers, cloud services and HSM operations. The result is a powerful HSM as a service solution that complements the company’s cloud-based PKI and IoT security solutions.”

“Encryption is a powerful tool,” said Robert Westervelt, Research Director, Security Products, IDC. “Delivering it easily across distributed infrastructure can be very effective in protecting data and applications against cyberattacks. Solutions such as nShield as a Service allow even the largest organisations to secure their public cloud workloads with all the conveniences of software-as-a-service offerings. Now, there are no excuses for not using encryption in the cloud.”

How nShield as a Service works
nShield as a Service uses nShield HSMs to generate, access and protect cryptographic key material separately from sensitive data. All nShield HSMs are managed through nCipher’s unique Security World key management architecture that spans cloud-based and on premises HSMs. This lets customers efficiently scale HSM operations while retaining control of their key material, even if they change their cloud service provider.

Organisations can utilize nShield as a Service to supplement or replace on premises HSMs, while keeping the benefits of HSM ownership. The subscription model lets enterprises budget predictably, manage capacity, reduce data center footprint and decrease time spent on routine maintenance and monitoring.

Next generation product set provides end-to-end, digitally sovereign cloud services.
Cockroach Labs has formed a new partnership with Crayon, a global provider of software and cloud...
Console Connect and Wasabi Technologies to support businesses with fast and secure cloud migration...
West Midlands Trains is owned by Transport UK. Operating London Northwestern Railway and West...
AWS becomes the Official Generative AI Provider of the DFL as part of its long-term innovation...
Alliance will focus on modernising IT infrastructures by streamlining connectivity to multiple...
New serverless Inference-as-a-Service offering available from Vultr across six continents and 32...
Google Cloud and Akeneo have formed a technology partnership that will boost Akeneo’s innovation...